Lucene search
+L

44 matches found

Patchstack
Patchstack
added 2024/12/02 3:33 p.m.9 views

WordPress ARForms plugin <= 6.4.1 - Subscriber+ Plugin Settings Change vulnerability

Subscriber+ Plugin Settings Change vulnerability discovered by Dave Jong Patchstack in WordPress Plugin ARForms versions = 6.4.1...

5.4CVSS7AI score0.00433EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/12/02 3:31 p.m.8 views

WordPress ARForms plugin <= 6.4.1 - Subscriber+ Arbitrary File Read vulnerability

Subscriber+ Arbitrary File Read vulnerability discovered by Dave Jong Patchstack in WordPress Plugin ARForms versions = 6.4.1...

7.7CVSS7AI score0.00539EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/09/11 12:53 a.m.6 views

WordPress HTML5 Video Player plugin <= 2.5.34 - Missing Authorization to Authenticated (Subscriber+) Limited Options Update vulnerability

Missing Authorization to Authenticated Subscriber+ Limited Options Update vulnerability discovered by Lucio Sá in WordPress Plugin Flash & HTML5 Video versions = 2.5.34...

4.3CVSS7AI score0.00309EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/09/09 12:31 a.m.8 views

WordPress WP ULike plugin < 4.7.2.1 - Subscriber+ Stored-XSS vulnerability

Subscriber+ Stored-XSS vulnerability discovered by stealthcopter in WordPress Plugin WP ULike versions 4.7.2.1...

3.5CVSS7AI score0.00355EPSS
Exploits1References1Affected Software1
Patchstack
Patchstack
added 2024/08/12 1:11 p.m.10 views

WordPress Leopard plugin <= 2.0.36 - Subscriber+ Plugin Settings Change vulnerability

Subscriber+ Plugin Settings Change vulnerability discovered by Dave Jong Patchstack in WordPress Plugin Leopard - WordPress offload media versions = 2.0.36...

7.1CVSS7AI score0.00358EPSS
Exploits0Affected Software1
OSV
OSV
added 2024/07/27 1:15 p.m.5 views

CVE-2024-6703

The Contact Form Plugin by Fluent Forms for Quiz, Survey, and Drag & Drop WP Form Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘description’ and 'btntxt' parameters in all versions up to, and including, 5.1.19 due to insufficient input sanitization and output...

5.4CVSS5.9AI score0.00322EPSS
Exploits0References3
Patchstack
Patchstack
added 2024/07/24 2:34 a.m.8 views

WordPress Social Auto Poster plugin <= 5.3.14 - Authenticated (Subscriber+) Stored Cross-Site Scripting vulnerability

Authenticated Subscriber+ Stored Cross-Site Scripting vulnerability discovered by István Márton in WordPress Plugin Social Auto Poster versions = 5.3.14...

6.4CVSS5.7AI score0.00257EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/07/19 7:22 a.m.6 views

WordPress ArtPlacer Widget plugin < 2.21.2 - Subscriber+ Arbitrary Widget Deletion vulnerability

Subscriber+ Arbitrary Widget Deletion vulnerability discovered by Bob Matyas in WordPress Plugin ArtPlacer Widget versions 2.21.2...

6.5CVSS7AI score0.00397EPSS
Exploits1References1Affected Software1
Patchstack
Patchstack
added 2024/07/15 2:56 a.m.5 views

WordPress WordPress Plugin Tournamatch plugin < 4.6.1 - Subscriber+ Stored XSS vulnerability

Subscriber+ Stored XSS vulnerability discovered by Davide Balzano in WordPress Plugin Tournamatch versions 4.6.1...

5.4CVSS6.1AI score0.00312EPSS
Exploits1References1Affected Software1
Patchstack
Patchstack
added 2024/07/09 2:8 p.m.6 views

WordPress User Activity Log Pro plugin <= 2.3.4 - Subscriber+ Multiple Broken Access Control vulnerability

Subscriber+ Multiple Broken Access Control vulnerability discovered by Dave Jong Patchstack in WordPress Plugin User Activity Log Pro versions = 2.3.4...

6.3CVSS7AI score0.00336EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/06/28 6:22 a.m.8 views

WordPress Easy Affiliate Links plugin <= 3.7.3 - Missing Authorization to Authenticated (Subscriber+) Settings Reset vulnerability

Missing Authorization to Authenticated Subscriber+ Settings Reset vulnerability discovered by Lucio Sá in WordPress Plugin Easy Affiliate Links versions = 3.7.3...

4.3CVSS7AI score0.00395EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/06/06 9:54 a.m.7 views

WordPress Widget Options Extended plugin <= 5.1.0 - Subscriber+ User Meta Data Exposure Vulnerability

Subscriber+ User Meta Data Exposure Vulnerability discovered by Dave Jong Patchstack in WordPress Plugin Widget Options - Extended versions = 5.1.0...

6.5CVSS6.9AI score0.00422EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/06/06 9:52 a.m.9 views

WordPress Widget Options plugin <= 4.0.1 - Subscriber+ Private/Draft Post Exposure Vulnerability

Subscriber+ Private/Draft Post Exposure Vulnerability discovered by Dave Jong Patchstack in WordPress Plugin Widget Options versions = 4.0.1...

6.9AI score0.00294EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/06/06 9:51 a.m.8 views

WordPress Widget Options plugin <= 4.0.1 - Subscriber+ User Meta Data Exposure Vulnerability

Subscriber+ User Meta Data Exposure Vulnerability discovered by Dave Jong Patchstack in WordPress Plugin Widget Options versions = 4.0.1...

6.9AI score0.00294EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/05/15 5:16 p.m.5 views

WordPress Visualizer plugin <= 3.10.15 - Subscriber+ Arbitrary SQL Execution vulnerability

Subscriber+ Arbitrary SQL Execution vulnerability discovered by Krzysztof Zając in WordPress Plugin Visualizer versions = 3.10.15...

8.8CVSS7.7AI score0.00614EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/05/15 5:34 a.m.5 views

WordPress SP Project & Document Manager plugin <= 4.70 - Authenticated (Subscriber+) Arbitrary Folder Name Update vulnerability

Authenticated Subscriber+ Arbitrary Folder Name Update vulnerability discovered by fewwords huang in WordPress Plugin SP Project & Document Manager versions = 4.70...

4.3CVSS7AI score0.0042EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/05/06 1:43 p.m.5 views

WordPress ParcelPanel plugin <= 3.8.1 - Subscriber+ SQL Injection vulnerability

Subscriber+ SQL Injection vulnerability discovered by Le Ngoc Anh Patchstack Alliance in WordPress Plugin ParcelPanel versions = 3.8.1...

8.5CVSS8.1AI score0.00521EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/04/22 10:55 a.m.6 views

WordPress ARForms plugin <= 6.4 - Subscriber+ Arbitrary Plugin Activation/Deactivation Vulnerability

Subscriber+ Arbitrary Plugin Activation/Deactivation Vulnerability discovered by Dave Jong Patchstack in WordPress Plugin ARForms versions = 6.4...

8.8CVSS6.9AI score0.00382EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/04/22 10:53 a.m.9 views

WordPress ARForms plugin <= 6.4 - Subscriber+ Arbitrary WordPress Options Removal vulnerability

Subscriber+ Arbitrary WordPress Options Removal vulnerability discovered by Dave Jong Patchstack in WordPress Plugin ARForms versions = 6.4...

7.1CVSS7AI score0.00335EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/04/15 11:53 a.m.10 views

WordPress WooCommerce Customers Manager plugin < 29.7 - Subscriber+ SQL Injection vulnerability

Subscriber+ SQL Injection vulnerability discovered by Ivan Spiridonov in WordPress Plugin WooCommerce Customers Manager versions 29.7...

8.1CVSS9.1AI score0.02877EPSS
Exploits5References1Affected Software1
Rows per page
Query Builder